OpenVPN virtual IPs?



  • Hi,

    I'm using OpenVPN with port forwarding to access various services in my network. Unfortunately a lot of them require to use the same port, hence port forwarding is a hassle for me (I have to constantly customize port settings when I'm accessing them from the outside since only pfsense box ip is available inside the vpn).

    Is it possible to expose my LAN IPs to the VPN network? Or maybe I could just create a rule for VPN network to pass traffic to given IPs from other LAN and I would be fine?

    Thanks in advance!


  • LAYER 8 Rebel Alliance

    @beefer said in OpenVPN virtual IPs?:

    Is it possible to expose my LAN IPs to the VPN network?

    Yes, this is how you normally use the OpenVPN RAS. ;-)

    @beefer said in OpenVPN virtual IPs?:

    Or maybe I could just create a rule for VPN network to pass traffic to given IPs from other LAN and I would be fine?

    If your other Settings are correct you just need some Firewall Rules.
    Maybe you could just re-run the OpenVPN wizard, in the last step there is some option to let the wizard create Rules.
    And check out https://www.netgate.com/docs/pfsense/vpn/openvpn/openvpn-remote-access-server.html

    -Rico


  • LAYER 8 Netgate

    Is this your own server or some provider that forwards ports into your network?

    If the former, I don't get where port forwards come into it at all.

    If the latter, spin up your own remote access server on your WAN to connect to internal assets. Works great. No NAT or anything required.



  • Thanks a lot for clarification! This is my own server - all I needed to do is to setup a rule to allow access lan network from vpn network and add a route on the client. Now, pfsense is just pure awesomeness :)


  • LAYER 8 Rebel Alliance

    Depending on your OpenVPN RAS setup the route is pushed to the Client, no need for manual steps.

    -Rico